diff options
| author | Joas Schilling <coding@schilljs.com> | 2021-10-26 13:26:46 +0200 |
|---|---|---|
| committer | Joas Schilling <coding@schilljs.com> | 2021-10-28 10:24:16 +0200 |
| commit | c42f5bc5f666290b99a1662b9048d3163bee0be9 (patch) | |
| tree | 52a7152703a8df66acada84adb223845d4389917 /lib/public | |
| parent | d231d2618de78b87cbc3916109652f0432fee607 (diff) | |
| download | nextcloud-server-c42f5bc5f666290b99a1662b9048d3163bee0be9.tar.gz nextcloud-server-c42f5bc5f666290b99a1662b9048d3163bee0be9.zip | |
Add an OCP for trusted domain helper
Signed-off-by: Joas Schilling <coding@schilljs.com>
Diffstat (limited to 'lib/public')
| -rw-r--r-- | lib/public/Security/ITrustedDomainHelper.php | 56 |
1 files changed, 56 insertions, 0 deletions
diff --git a/lib/public/Security/ITrustedDomainHelper.php b/lib/public/Security/ITrustedDomainHelper.php new file mode 100644 index 00000000000..4737625b6e8 --- /dev/null +++ b/lib/public/Security/ITrustedDomainHelper.php @@ -0,0 +1,56 @@ +<?php + +declare(strict_types=1); +/** + * @copyright Copyright (c) 2021 Joas Schilling <coding@schilljs.com> + * + * @license GNU AGPL version 3 or any later version + * + * This program is free software: you can redistribute it and/or modify + * it under the terms of the GNU Affero General Public License as + * published by the Free Software Foundation, either version 3 of the + * License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU Affero General Public License for more details. + * + * You should have received a copy of the GNU Affero General Public License + * along with this program. If not, see <http://www.gnu.org/licenses/>. + * + */ + +namespace OCP\Security; + +/** + * Allows checking domains and full URLs against the list of trusted domains for + * this server in the config file. + * + * @package OCP\Security + * @since 23.0.0 + */ +interface ITrustedDomainHelper { + /** + * Checks whether a given URL is considered as trusted from the list + * of trusted domains in the server's config file. If no trusted domains + * have been configured and the url is valid, returns true. + * + * @param string $url + * @return bool + * @since 23.0.0 + */ + public function isTrustedUrl(string $url): bool; + + /** + * Checks whether a given domain is considered as trusted from the list + * of trusted domains in the server's config file. If no trusted domains + * have been configured, returns true. + * This is used to prevent Host Header Poisoning. + * + * @param string $domainWithPort + * @return bool + * @since 23.0.0 + */ + public function isTrustedDomain(string $domainWithPort): bool; +} |